dc11c96d711084ea47b52ec95e7286fcb56b334fec56619ebb07a6d872f1d5d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dc11c96d711084ea47b52ec95e7286fcb56b334fec56619ebb07a6d872f1d5d1
Size

127KB
MD5

28e5629a08555c7472d65d599c69ed77
SHA1

333a2c1095a17f52998f8a66272829fee8a4d9b2
SHA256

dc11c96d711084ea47b52ec95e7286fcb56b334fec56619ebb07a6d872f1d5d1
SHA512

92fed82f2bd4135b711786da702db7bd4dc52c7e1b2c635dbb159be62d7c421bdde8d96c7a0d35eb0d41f4a13874cad18ce188206f4ff0b4e87250a23632d4d6
SSDEEP

3072:jOjWuyt0ZHqsXOKofHfHTXQLzgvnzHPowYbvrjD/L7QPbg/Dr0T3rnXLHf7zjPPL:jIH9OKofHfHTXQLzgvnzHPowYbvrjD/O

Score

10^/10

Malware Config

Signatures

UPX dump on OEP (original entry point) 1 IoCs

resource	yara_rule
sample	UPX

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc11c96d711084ea47b52ec95e7286fcb56b334fec56619ebb07a6d872f1d5d1

Files

dc11c96d711084ea47b52ec95e7286fcb56b334fec56619ebb07a6d872f1d5d1
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

62x2ecxg
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

c534mfzd
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

6640vasl
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE